{
  "repository": "joomlack/page_builder_ck",
  "commit_source": "extension_package",
  "submitted_target": {
    "target_kind": "joomla_extension",
    "version": "3.6.1",
    "ref": "com_pagebuilderck free",
    "display": "Page Builder CK (com_pagebuilderck) v3.6.1 fixed"
  },
  "variant_target": {
    "target_kind": "joomla_extension",
    "version": "3.6.1",
    "ref": "com_pagebuilderck free",
    "display": "Page Builder CK (com_pagebuilderck) v3.6.1 fixed (tested in Docker: joomla:5.2-php8.2-apache + mariadb:10.11)"
  },
  "notes": "No git repository is available for this Joomla extension; the tested source is the official extension package pagebuilderck_3.6.1.zip (com_pagebuilderck, free variant, version 3.6.1 as declared in pagebuilderck.xml). The vulnerable state was recreated by reverting all CKFof::checkSecurity() calls from the fixed install (equivalent to <=3.5.10)."
}
